What is a free ads account and how do you get one?

And the alert always appears very very soon from typing in the Flyertalk URL so I doubt people had a chance to logon before there were molestered with this warning.

I usually type ww.flyert and then suggestions appear and I click straight onto BA executive club and the warning appears every time I have not accessed the site for a while without fail.

Maybe you could ask people to fill in a small questionnaire to agther similar characteristics and to be able to replicate the problem.

IE 9
shortcut in favorites to : http://www.flyertalk.com/forum/

also does in on IE 8 on laptop - same shortcut

Most recent warning for me was yesterday morning. Later in the evening no problem, and this afternoon was okay also. Coincidence, or does time of day (in my case the most warnings have popped up usually very early 3-4 AM eastern time, or a bit later in the morning) have anything to do with it occuring?

Anyone seeing something similar timewise?

bj-21.

If I am up late I seem to get it a few minutes after midnight

As noted by others, I generally get only one per 24 hour period.

I'm exactly the same as this.

After advice on this forum I started using Chrome when accessing Flyertalk and have had no problems with this fake virus thing....yesterday I mistakenly used IE and lo and behold up pops the virus warning so if you can use Chrome!

Started using Chrome also, though I use it for all websites not just FT. Another benefit is that it seems to run much faster than IE. Probably won't go back to IE. FT must own stock in Google.

It is only happening for me when I am logged in - if I am logged out/cookies cleared, it doesn't seem to happen.

Can we have a little more feedback as to why this hasn't been repaired yet? I even sent screen shots and didn't even received an acknowledgement.

With all due respect11 days (with all the expert organisations available) to help detect and kill this issue feels to me like around 8 days longer than it should be. All feels as though the response is out of kilter with the urgency.

A new screen appeared today, when I used Chrome. Sgnificance: I think some IE material might have been residual when I went to Chrome.

Sequence of events:

(1) Browsed Internet (CNN), using IE. (My IE browser is set to delete cookies whenever IE browser is closed.)
(2) Still in IE, went to FlyerTalk.
(3) Clicked on Forums.
(4) Virus-alert message appeared, on an all-white background, without any Flyertalk screen in the background. Made a snip.
(5) Tried to right-click for page source but nothing worked except Ctrl Alt Del.
(6) Turned computer off, using on-off button.
(7) Turned computer back on. (Note that at this point IE had not been automatically closed down, which would have deleted cookies automatically--though of course it did not reopen when I restarted the computer.)
(8) Opened Chrome. (IE is still off.) Went to Flyertalk.
(9) Could not open Chrome, got a new screen box, which read:

(10) Checked IE for residual cookies, found a Favicon (right-clicking showed this as owned by Flyertalk), and an "IE9 CompatViewList.xml", which rightclicking on showed as owned by Microsoft.

I can send a snip of the new screen but would need instructions on how to PM a jpg file.

Urgent @ Admin

I have found the source of the redirect (all links have been delibrately broken by me in the http bit to inadvertently stop any users clicking on them):

It is coming from the HotelDetect banner (which is hosted here hxxp://adliclick.com/banner.php?campaign_id=12175&rc=475737972919972). This is a copy of the request header:


This appears to be a bogus site.

The above banner page contains the following malicious code:

The iframe within this code is redirecting to a html page (hxxp://adbitserver.com/in?q=LfCAhlbgw9cnPT8tAbM5uSk36uh4OyeQxol9XkHX) which contains the following HTML code:

I cannot find exactly where the source for the adliclick.com is coming from in your source code (I strongly suggest checking all your scripts for references to it), but I have a copy of the source codes from all sites when the redirect hit me. Let me know if you want copies.

Good job MoneyBagger. (Work that should have been done by IB/Flyertalk over a week ago.)

Nice work MoneyBagger.

^ Good job.

Just for my academic interest, how hard was this to work out? Was it something that any competent IT person could work out, or was it more specialised?